User Information List item disappears when user previews documents in the browser (OOS, WordViewer, ExcelViewer)

Alexey Krasheninnikov 0 Reputation points
2023-02-03T15:02:29.7566667+00:00

Hi folks,

We have one user who experiences a very uncommon problem. She disappears from UserInformationList every time she previews a document with Office Online Server, and individually assigned permissions are also deleted immediately when WordViewer.aspx is called. Domain-group based permissions remain intact.

Any ideas what could cause this strange behavior?

Microsoft Office Online Server
Microsoft Office Online Server
Microsoft on-premises server product that runs Office Online. Previously known as Office Web Apps Server.
585 questions
SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
9,628 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alexey Krasheninnikov 0 Reputation points
    2023-02-03T16:38:25.2233333+00:00

    A certain VPN connectivity client was trying to be helpful, automatically selecting an authentication certificate from the user's smart card. However, the smart card also contained an expired certificate for the same account. The VPN client chose it for some unknown reason.

    Everything (including document downloads) worked until WopiFrame.aspx/ExcelViewer.aspx/WordViewer.aspx/WordViewerFrame.aspx were requested with this authentication credential. These page requests consistently resulted in removing individual permissions (role assignments) and UserInfo entries.

    Now that we've found the cause, the user can work just fine with login/password or a non-expired certificate.

    This looks very creepy. The Office Online Server team should definitely review the security implications.

    Looking forward to a CU for this problem.

    0 comments
  2. AllenXu-MSFT 16,086 Reputation points Microsoft Vendor
    2023-02-06T02:13:23.55+00:00

    Hi @Alexey Krasheninnikov,

    I'm glad to hear you solve the problem ,if you have any issue about SharePoint, you are welcome to raise a ticket in this forum.

    Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others." and according to the scenario introduced here: Answering your own questions on Microsoft Q&A, I would make a brief summary of this thread:

    [User Information List item disappears when user previews documents in the browser (OOS, WordViewer, ExcelViewer)]

    Issue Symptom:

    One user disappears from UserInformationList every time she previews a document with Office Online Server, and individually assigned permissions are also deleted immediately when WordViewer.aspx is called.

    Solutions:

    the user can work just fine with login/password or a non-expired certificate.

    You could click the "Accept Answer" button for this summary to close this thread, and this can make it easier for other community member's to see the useful information when reading this thread. Thanks for your understanding and support!

    By the way, You can submit feedback to MS here: https://feedbackportal.microsoft.com/feedback/forum/06735c62-321c-ec11-b6e7-0022481f8472. Customer feedback is very important to us – your ideas can change and improve products for users around the world.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments